Hosted Exchange - Only One Connection On Network
Sep 7, 2012
We started out by switching them over from a normal POP server email service through Outlook and getting them onto Charter hosted Exchange. However, after getting them all set up, we had intermittent connection problems keep occurring. Here is what I know so far:
-the problem is with their network for sure
-re-imaged computers and reinstalled office
-any connection to exchange.charter-business.net is intermittent from their location only.
-replaced modem, router, switch
-tried different DNS servers, same problem
-used their DNS servers from another location, no problem connecting
Once we replaced their switch, the problem morphed a bit. Now, one of them can be connected at any given time without having problems. However, when the other tries to connect, they can't get through. E.g, if user #1 closes outlook, user #2 can now connect without problems.
View 3 Replies
ADVERTISEMENT
Oct 25, 2011
I am in need to setup a VPN tunnel to a vendors hosted network for AD authentication.To prevent RFC1918 Address overlap we are trying to NAT into a VPN Transit Network.I was given 209.235.17.232/19 and need to NAT these addresses:
209.235.17.233 <> 172.20.0.42
209.235.17.234 <> 172.20.0.43
The vendor is using 209.235.17.224/29 and NAT'ing to some 10.122.xx.xx addresses.
The Phase 1 requirements are:
Pre-Shared DH-Group2-AES256-SHA1 86400 seconds
The Phase 2 requirements are:
NOPFS-AES256-SHA1 3600 seconds
I have many l2l VPN tunnels configured using esp-3des esp-sha-hmac This is what I have configured on my ASA:
static (INSIDE,OUTSIDE) 209.235.17.233 172.20.0.42 netmask 255.255.255.255
static (INSIDE,OUTSIDE) 209.235.17.234 172.20.0.43 netmask 255.255.255.255
access-list VPN-TO-JIVE extended permit ip 209.235.17.232 255.255.255.248 209.235.17.224 255.255.255.248
access-list VPN-TO-JIVE extended permit ip 209.235.17.224 255.255.255.248 209.235.17.232 255.255.255.248
[code].....
Currently my side is trying to initiate the tunnel, but we are getting this message:
15 IKE Peer: 65.168.255.157
Type : user Role : initiator
Rekey : no State : MM_WAIT_MSG2
I am configuring the transit network for the tunnel properly or performing the NAT for my 2 devices.I am still trying to determine what device the Vendor has on their end.
View 1 Replies
View Related
Jun 7, 2011
I got two offices about 150KM from each other,i need to backup 10 to 20GB / machine,the data ranges from accounts package to doc files etc.i suggested a vpn, then backup from one side to the other and vice versa as this ensures backups are swapped over and are off site.Would you recommend this, or am i better off using a hosted backup service i pay for / GB?
View 8 Replies
View Related
Dec 26, 2012
I was using a wrt54g previously, and host my own webserver, including my own DNS server. I used port forwarding to forward the web traffic to that computer. Well my family got me a new EA3500 as my old one would continually stop working.Since changing router when I duplicate the port forwarding setup from old to new, all the web browsing dies. My web server has now been offline for a few days, and I'm frustrated beyond belief now. I know I've seen the previous posts saying to never forward port 53 (DNS), but I'm at a loss why I could with my old router, but it's now the end of the world with this new one.
View 9 Replies
View Related
Jan 10, 2013
Here's my setup:
- Cisco 1841 connected to the internet on fa0/1
- LAN connected to fa0/0/1 (switch port, connected to Vlan1)
On my LAN I have a web server that houses different websites. Those websites have DNS records that point to my public IP address, located on fa0/1. From the outside I can reach the websites perfectly, but I can't reach them from the inside. So it looks like I can't seem to connect from my local LAN address to the public ip address on the Cisco (who then should NAT it to the correct server)
Here is a snippet from my config:
--NAT--
ip nat inside source static tcp 192.168.0.3 80 interface FastEthernet0/1 80
ip nat inside source route-map Internet interface FastEthernet0/1 overload
--OUTSIDE INTERFACE--
interface FastEthernet0/1
description WAN
ip address dhcp
ip access-group WAN-IN in
[ code]...
--INSIDE INTERFACE--
interface Vlan1
description LAN
ip address 192.168.0.254 255.255.255.0
ip access-group LAN-IN in
[Code]....
View 3 Replies
View Related
Sep 23, 2012
I have a customer who is going to host a VOICE services like providing SIP services to its customers. What specific ports required to be opened up for this on ASA 5515X. I would rate it ASAP.
View 3 Replies
View Related
May 4, 2013
I have a Cisco ASA 5505 in my home office which has a few PCs behind it with a linux web server running some websites. I can access the websites from outside no problem (i.e. on my iPhone using a 3G connection). However, I struggle to access the websites from within the network. The ASA gives me this error: [code]
View 3 Replies
View Related
Mar 11, 2010
We have 2mbps leased line and have Cisco 1841 which is managed by our ISP. I have hooked up another 1841 (please find basic config below, it will get more complex lateron) Now when I connect my laptop I am able to browse Internet. But when I conect VOIP phone, it is not able to contact it's Hosted Server on Internet.
VOIP phone is Polycom SoundPoint 550 and I get URL call disabed message. If I try netgear Firewall everything seems to work.that the voip provider needs following ports UDP Range 16384 - 32766, TCP 5060 & UDP 5060. But in my config all outbound traffic is allowed. [code]
View 6 Replies
View Related
Jan 15, 2013
Region : Canada
Model : TL-WDR4300
Hardware Version : V1
Firmware Version : 3.13.23 Build 120810 Rel.44064n
ISP : Bell Canada
We have a WDR4300 router that works well about 98% of the time. We have a static IP address from our ISP configured through PPPoE in the router and are hosting our own email and web server at local IP 192.168.1.200 behind the router. Port forwarding is enabled and working beautifully.
At some times throughout the day, any computer behind the router on our local network is unable to browse to our own website by our domain name (e.g. www.xyz.com) nor by the static IP it is attached to. We also get e-mail errors with mail client configured to use the domain name or the static IP it is attached to as the outgoing mail server. When this happens, I am still able to browse any other site on the internet without problem... just not our own. Also, I have verified that while this is happening (internal computers can access the internet but not our own website):
1) I can browse to our website just fine from a computer outside of our network (e.g. a proxy or a computer controlled remotely from my home)
2) a computer from within the office that cannot reach our website using the domain name or the static IP it is attached to can still reach the website by browsing to the local IP address of the web server (192.168.1.200)
3) the problem seems to resolve itself sometime within 45 minutes of noticing it is occurring if we do nothing. We can make the problem resolve itself sooner by restarting the router.
I have the impression that this problem MIGHT start occurring when users are downloading files from our website. Of course, if this is the case, we cannot simply restart the router to fix the problem because then we are cutting off their download.
View 2 Replies
View Related
Aug 23, 2011
We have Cisco ASA 5505 with ASDM 5.2 We have one Proxy server in our Local Lab and pointed to Hosted service(Simple Signal)issue is, When our proxy server send register to hosted server, ASA change private IP and post with outside IP and src port as 1063 every time.
Here is debug log on real time monitoring.
Aug 24 2011 05:21:19 302015 203.xxx.xxx.226 192.168.1.51 Built outbound UDP connection 3774 for outside:203.xxx.xxx.226/5060 (203.xxx.xxx.226/5060) to inside:192.168.1.51/27014 (99.119.161.107/1142)
Aug 24 2011 05:21:19 607001 203.xxx.xxx.226 Pre- allocate SIP Via UDP secondary channel for inside:192.168.1.51/27014 to outside:203.xxx.xxx.226 from REGISTER message
Aug 24 2011 05:21:19 710005 203.xxx.xxx.226 99.xxx.xxx.107 UDP request discarded from 203.xxx.xxx.226/5060 to outside:99.xxx.xxx.107/1063
Here 99.xxx.xxx.107 is Our ASA Outside IP address 203.xxx.xxx.226 is Hosted server IP address. My ASA config is attached.
View 2 Replies
View Related
Apr 5, 2011
I have got a PC at work (Windows XP Pro SP3) that is on two networks with the IPs 10.20.30.167, subnet 255.255.255.0 (internet enabled) and 10.0.0.20, subnet 255.255.255.0 (no internet). On the 10.0.0.X network there is a gateway with the IP 10.0.0.200 allowing access to another network; 192.168.60.X, subnet 255.255.255.0 (no internet). I have added the route on my work PC to access the 192.168.60.X network via this gateway and I can access all PCs on all three networks from this PC.Now, I am using LogMeIn Hamachi so that I can access the networks at work from home. The PC at work is the 'gateway' PC on the Hamachi network. When installing Hamachi it created a new network connection and bridged this connection with my 10.20.30.167 network adapter to allow access to the 10.20.30.X network from an external PC when connected using the Hamachi VPN connection. I have manually configured my Hamachi connection on my PC at home to the IP 10.20.30.169, subnet 255.255.255.0, with the default gateway set to 10.20.30.167. I can ping all computers on the 10.20.30.X network from my PC at home.
I then added a route on my PC at home for 10.0.0.X to go via 10.20.30.167 (the 'gateway' on the Hamachi network). I also enabled IP forwarding on the 'gateway' PC (my PC at work). I can not ping any PC on the 10.0.0.X network from my PC at home apart from 10.0.0.20 (the other NIC in the Hamachi gateway PC) and 10.0.0.30 (another PC on the 10.20.30.X network that is also on the 10.0.0.X network).Now, with IP forwarding enabled on the Hamachi gateway PC I would assume after adding the route on my PC at home for 10.0.0.X traffic to go via 10.20.30.167 that I would be able to ping all PCs on the 10.0.0.X network...I also tried adding a route on my home PC to send all traffic for the 192.168.60.X network via 10.20.30.167 which has a route via 10.0.0.200 to the 192.168.60.X network, but this also did not work.I then tried adding the 10.0.0.20 network adapter into the network bridge that the Hamachi connection made, also keeping both IPs (10.20.30.167 and 10.0.0.20) on this network bridge by adding them into the 'IP Settings' in the 'Advanced TCI/IP Settings'. I also added the 10.0.0.200 gateway for good measure. I still cannot ping any PC on the 10.0.0.X or 192.168.60.X networks from my PC at home.
I have also added the route to the 10.20.30.X network on a PC on the 10.0.0.X network to go via 10.0.0.20 and tried pinging a PC on the 10.20.30.X network but this also has not worked. Also setting the default gateway on a PC on the 10.0.0.X network to 10.0.0.20 does not allow this...Surely bridging the networks 10.20.30.167 and 10.0.0.20 on my work PC would allow another PC on the 10.0.0.X network to access the 10.20.30.X network after adding the route or setting 10.0.0.20 as the default gateway?
View 2 Replies
View Related
Apr 13, 2013
I am new to Exchange Server 2007 . I want to know that in order to implement Exchange Server do I need to register Domain name like [url]... ? OR A FQDN of Active Directory can work.Is it compulsory to register domain ?
View 3 Replies
View Related
May 2, 2012
I'm looking for an online-service, where I can share files. Something like a forum, but not to text, but to share files (mostly MS office files). Main criteria are:
1) Access only by an account created by the admin (--> limited amount of members)
2) possibility of moderation through admin (meaning that I can determine, who can access which folders, who can upload/change/delete files).Something like OLAT, moodle, or blackboard, for those who know, only smaller.Would I need to create something new or is there some service already existent, where I could rent space?
View 1 Replies
View Related
Mar 3, 2012
We use microsoft exchange for outlook. I want to know which ports are being used by our exchange server to receive and send emails. Is it possible to check that?
View 1 Replies
View Related
Sep 11, 2012
Add static route for new exchange server?
View 1 Replies
View Related
May 29, 2013
I am trying to issue command "ssh key-exchange group dhgroup14" on several of my ASA firewalls. The key-exchange command is failing on 3 of 4 ASA firewalls. According to Cisco documentation, this command was introducted in 8.4. My ASA's are running version 8.6.1.10, 9.1.1.8, 9.1.1.10 and 9.1.2. The command is available only with 9.1.2.
Example from one my ASA.
lbjinetfw# show version | in Version
Cisco Adaptive Security Appliance Software Version 8.6(1)10
Device Manager Version 7.1(2)
Baseboard Management Controller (revision 0x1) Firmware Version: 2.4
lbjinetfw# config t
lbjinetfw(config)# ssh
[code]....
View 3 Replies
View Related
Jun 1, 2011
How to uninstall exchange server 2003 from domain controller?
View 1 Replies
View Related
Aug 28, 2012
Currently, my company runs a DC and exchange server in the building. It is also hosting our website with IIS7. All AD users currently have @company1.com.au email addresses.We have just started an off shoot company and would like to setup emails in exchange so that we can automatically assign and manage emails on the same exchange server. so that each user hasWhat is the best way to do this?At the moment, company2.com - company is hosted outside with someone else. Is there a way that he can direct the mail to us so that he hosts the website but we host the email server?
View 1 Replies
View Related
Jan 22, 2013
I think that our users are at the largest capacity for attachments, twice in the past week one of our users did not received important emails because of the attachment size limit. The problem is that the sender thinks we got it b/c there is no bounce back and we have no record of the email being sent. my question is how do i increase the attatchment size for incoming emails?
View 4 Replies
View Related
Sep 12, 2011
I have a PC on a crowded network that cannot handle much more bandwidth usage.I am now going to have a tons of transferring to do offsite so I added a second internet line just to deal with the influx of file transfers.I tried a dual WAN setup on my router and the performance was not improved (if it was nobody noticed it) so I said forget that idea, I only need to do these massive transfers from 1 PC so I will just add a second NIC to the machine so that the 1st NIC can maintain local network functionality and the 2nd NIC will be just for internet traffic (sending files up/down to offsite location) Essentially I just need NIC1 for handling local network, connecting to exchange etc. and NIC2 to handle files transfes to offsite location through seconday internet line.So now I have a desktop PC with two NICs. One of them built into the board, the other a pci add on nic. they are both 10/100
On nic1, there is a connection to my network 200.200.1.X which is the internal network for Exchange, local files transfers etc. This is the network i have always had connected and I have no problem connecting to my exchange server etc. (my server is providing dns/dhcp/wins/AD/MSE for the entire network)so I installed a secondary NIC and a secondary network line to the NIC2 on the machine.I set it up with an IP, a SN, a gateway and a DNSI removed the gateway from the 1st NIC.SO then I tried adding a gateway to BOTH of the NICs..This allows me to do EVERYTHING I want, however when i go to whatismyip.com and get a result, the IP it is giving me is NOT either of my static IPs (each network has a seperate internet line with a static IP). Not sure where this IP is coming from, but if i tracert google.com it says I am going out through the primary adaptor.The new IP from whatismyip.com makes no sense to me as it is not either of my static IPs, however it is very close.Would this be a situation where my ISP see's I have 2 gateways defined so it generates a 3rd external IP for some reason? Never heard of this but i am no guru.essentially I just need NIC1 for handling local network, connecting to exchange etc. and NIC2 to handle files transfers to offsite location through seconday internet line.
View 10 Replies
View Related
Aug 26, 2011
incoming mail server:/ [URL]
outgoing mail server :/ [URL]
i want to configure MS Exchange Server 2007 SP1 to use these?
View 1 Replies
View Related
Aug 22, 2011
I can connect to Internet perfectly fine. I can even VPN back into my office. However, once connected via VPN and I launch my Outlook Client, I'm not able to connect to get emails. When I run a "netstat -a", I get my "SYN_SENT" to all my office domain controllers and exchange servers.However, if I connected via my Starhub USB Broadband dongle, everything works perfectly fine.What settings do I need to do on my router? I tried port forwarding and application rules but none worked.
View 4 Replies
View Related
Nov 7, 2012
i have exchange with NLB cluster.
i want to PAT the cluster ip to access email from outside. i know i can add the static arp entry for multicast cluster ip.
my question is i can add static nat command to that same cluster ip for port 25 and 443 like normal way like we do for normal PAT?
View 2 Replies
View Related
Oct 23, 2011
I have a problem with Cisco WLC 2106 (SW: 7.0.98.0) and LAP1262. The client roams to new AP, associates with the new AP and authentication (WPA2 with EAP-TLS) runs fine until WPA2 key exchange.
The first WPA2-Key-paket from AP (1 / 4) is sent twice. On a closer look at those packets with Wire shark, i've found out the first is encapsulated into a 11n-frame (A-MSDU). The resent frame isn't. This figure shows the first WPA-Key-packet:
The next figure shows the 2nd key-packet, without 11n-encapsulation: The problem, that occurs a very long roaming-time with about 5 seconds. As you can see on second figure, the second wpa-key is sent 5 seconds after the first.
Some details:
Client: Tablet PC with Intel 6230 agn
Controller: Cisco WLC 2106
AP: LAP 1262
Controller SW: 7.0.98.0
Encryption: WPA2-AES
Authentication: EAP-TLS
This problem occurs just on 5-GHz interface with 40 MHz channel bandwidth.
View 4 Replies
View Related
Feb 26, 2013
We have the following setup on our Cisco ASA version 8.6.1 One to one NAT rule from outside to our Exchange 2010 cluster IP address (DAG group). This is working fine for clients on the internet accessing their emails via Exchange using their phones. The ASA has the MAC address of the active node from the cluster but when the cluster failover it cache the IP address and are not updating the new MAC when the cluster failover. So users from the outside are unable to connect to the new node from outside the ASA as the MAC address from the passive node is in the MAC table. The MAC address on all the switches update within 2 seconds on the internal network and users don't notice any outage.
View 4 Replies
View Related
Aug 16, 2011
We have a ASA5510 with a webserver in the DMZ network 10.2.2.0/24. We now want this web server to be able to access the Exchange server in the Inside network 10.1.1.0/24. I researched this and it seemed straight forward according the the Cisco document below:
[URL]
I'm looking to do this with smtp so I added these lines to the config:
static (inside,DMZ) 10.2.2.30 10.1.1.11 netmask 255.255.255.255
access-list dmz extended permit tcp host 10.2.2.2 host 10.2.2.30 eq smtp
The configuration line:access-group DMZ in interface DMZ Already existed in the configuration so didn't need to be re-entered.
ASA Version 8.0(4)
!
hostname xxxx
domain-name xxxx.com
enable password xxxxxxxxxxxx encrypted
passwd xxxxxxxxxxxxxx encrypted
names
[code]....
View 28 Replies
View Related
Sep 10, 2011
I am getting the following flooding the logs on my RV220W (IP Address replaced with X.X.X.X)
2011-09-12 00:58:54: [rv220w][IKE] ERROR: Invalid exchange type 243 from X.X.X.X[500].
2011-09-12 00:58:54: [rv220w][IKE] ERROR: Could not find configuration for
[Code].....
These are all coming from the same IP Address which is running Windows 7 Enterprise X64 using a WIRED connection.
View 3 Replies
View Related
Dec 8, 2011
I am tasked to Configure an ACE 4700 for SLB. This has been done and working. Am also further tasked to create a secure communication between tha ACE and Exchange server. I need the breakdown of steps required to Import certificate from the exchange server, and how to verify that things are working.
View 3 Replies
View Related
Jan 16, 2013
Need the clarity on IKE version 1 with aggressive mode, I assume this is used for remote site VPN and not for site to site VPN.
Correct me I am wrong and also share the inputs on this.
Also required the inputs for disabling in Cisco 3800 series router.
View 18 Replies
View Related
Oct 20, 2011
I am trying to configure the NLB multicast for the Microsoft exchange. The moment I am enabling the NLB my core switch 6509 CPU is reaching 100% and whole network getting down. [code]
I thinking I am putting wrong command. I am not able to see the disable-snooping in 6509 Switch.
View 7 Replies
View Related
Mar 18, 2011
since upgrading to 8.4(1) on our ASA 5520 I've had nothing but issues with our email server not being able to send out emails (timeouts,corruption, etc) and tried everything and then it dawned on me to turn off ESMTP inspection on the ASA's.Since I've down that our Exchange server SMTP works perfectly again.Why is it that ESMTP corrupts emails so badly from exchange server? (ours is a 2010 sp1)does anyone actually use ESMTP inspection at all?
View 3 Replies
View Related
Apr 12, 2009
I'm hosting my email on an Exchange Server 2003 box and have my laptop (Vista Ultimate 32 bit) setup to connect to the exchange server for my email. This works fine through a LinkSys RV042 in one location and a LinkSys WRT54GC in another, but fails through the DIR-615 B2 (2.24 firmware) at home. I'm guessing it's blocking something needed for the MAPI connection.
View 2 Replies
View Related
Sep 18, 2011
Basically the problem that I have is that I have a new Exchange server sitting on 192.168.12.2 IP address and on the router I have this NAT enabled
ip nat inside source static tcp 192.168.12.2 110 212.115.5.5 110 extendable ip nat inside source static tcp 192.168.12.2 25 212.115.5.5 25 extendable
The Exchange can receieve emails but it will not send them. It cannot make connection to any of the smart hosts on port 25 or can't even send mail using DNS. When I run telnet my.smarthost.com 25 it will not connect but if I run that from the router then it connects fine.
View 1 Replies
View Related
